Search Results | AttackerKB

Show filters

Topics 29 Users 9,708

Clear All

Disclosure Date

Disclosure Year Disclosure Month

Collection Command and Control Credential Access Defense Evasion Discovery Execution Exfiltration Impact Initial Access Lateral Movement Persistence Privilege Escalation

29 Total Results

Displaying 21-29 of 29

Attacker Value

Unknown

CVE-2024-54499

Disclosure Date: January 27, 2025 (last updated January 28, 2025)

A use-after-free issue was addressed with improved memory management. This issue is fixed in visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sequoia 15.2. Processing a maliciously crafted image may lead to arbitrary code execution.

0

Attacker Value

Unknown

CVE-2024-54478

Disclosure Date: January 27, 2025 (last updated January 28, 2025)

An out-of-bounds access issue was addressed with improved bounds checking. This issue is fixed in iPadOS 17.7.4, visionOS 2.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, macOS Sonoma 14.7.2, macOS Sequoia 15.2. Processing maliciously crafted web content may lead to an unexpected process crash.

0

Attacker Value

Unknown

CVE-2024-54468

Disclosure Date: January 27, 2025 (last updated January 28, 2025)

The issue was addressed with improved checks. This issue is fixed in macOS Ventura 13.7.2, tvOS 18.2, watchOS 11.2, iOS 18.2 and iPadOS 18.2, iPadOS 17.7.3, macOS Sonoma 14.7.2, macOS Sequoia 15.2. An app may be able to break out of its sandbox.

0

Attacker Value

Unknown

CVE-2024-54470

Disclosure Date: January 15, 2025 (last updated January 16, 2025)

A logic issue was addressed with improved checks. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1. An attacker with physical access may be able to access contacts from the lock screen.

0

Attacker Value

Unknown

CVE-2024-44136

Disclosure Date: January 15, 2025 (last updated January 16, 2025)

This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access to a device may be able to disable Stolen Device Protection.

0

Attacker Value

Unknown

CVE-2024-40854

Disclosure Date: January 15, 2025 (last updated January 16, 2025)

A memory initialization issue was addressed with improved memory handling. This issue is fixed in iOS 18.1 and iPadOS 18.1, iOS 17.7.1 and iPadOS 17.7.1, macOS Sonoma 14.7.1, macOS Ventura 13.7.1. An app may be able to cause unexpected system termination.

0

Attacker Value

Unknown

CVE-2024-40839

Disclosure Date: January 15, 2025 (last updated January 16, 2025)

This issue was addressed through improved state management. This issue is fixed in iOS 17.5 and iPadOS 17.5. An attacker with physical access to an iOS device may be able to view notification contents from the Lock Screen.

0

Attacker Value

Unknown

CVE-2024-40771

Disclosure Date: January 15, 2025 (last updated January 16, 2025)

The issue was addressed with improved memory handling. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, iOS 17.5 and iPadOS 17.5, macOS Monterey 12.7.5, watchOS 10.5, tvOS 17.5, macOS Ventura 13.6.7, visionOS 1.2. An app may be able to execute arbitrary code with kernel privileges.

0

Attacker Value

Unknown

CVE-2024-27856

Disclosure Date: January 15, 2025 (last updated January 16, 2025)

The issue was addressed with improved checks. This issue is fixed in macOS Sonoma 14.5, iOS 16.7.8 and iPadOS 16.7.8, Safari 17.5, iOS 17.5 and iPadOS 17.5, watchOS 10.5, tvOS 17.5, visionOS 1.2. Processing a file may lead to unexpected app termination or arbitrary code execution.

0